Smartcard Logon fails and certificate revocation list is not displayed
search cancel

Smartcard Logon fails and certificate revocation list is not displayed

book

Article ID: 246563

calendar_today

Updated On:

Products

Messaging Gateway

Issue/Introduction

After setting up smart card authentication in Messaging Gateway (SMG) and importing a certificate revocation list (CRL), smart card authentication fails and the CRL is not properly displayed in Administration > Smart Card > Certificate Revocation List > View Certificate Revocation List:

Environment

Release : 10.7.5

Component : Management Console

Cause

The CRL is too large and being truncated during import. When SMG attempts to validate a cert against the truncated CRL an error is generated causing the login attempt to fail.

Resolution

This issue will be addressed in the next software release (SMG 10.8)

Deleting the non-functional certificate revocation list from Administration > Smart Card > Certificate Revocation List and replacing it with a working CRL such as Google's public certificate revocation list will allow smart card login but without the security if checking the required certificate revocation list.

Powered by Wolken Software